Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/kbVZbSVjxhRda_qBSHnj8kzIMgU.roa
File: kbVZbSVjxhRda_qBSHnj8kzIMgU.roa (raw, json)
Hash identifier: tlkRzE91+pPC0xfXU3jqw4KnbsLDTUFC1LtygF3dyCs=
Subject key identifier: 91:B5:59:6D:25:63:C6:14:5D:6B:FA:81:48:79:E3:F2:4C:C8:32:05
Certificate issuer: /CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Certificate serial: 0542B8D6
Authority key identifier: 05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/kbVZbSVjxhRda_qBSHnj8kzIMgU.roa
Signing time: Mon 23 May 2022 12:11:29 +0000
ROA not before: Mon 23 May 2022 12:11:29 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 208121
IP address blocks: 139.28.84.0/23 maxlen: 23
139.28.86.0/23 maxlen: 23
45.67.244.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 88258774 (0x542b8d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=0534c49fcfa8a45041d95ed4d8d4fc69c727a467
Validity
Not Before: May 23 12:11:29 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=91b5596d2563c6145d6bfa814879e3f24cc83205
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ba:b8:b8:02:a3:c6:78:bd:bf:26:df:39:e5:60:
5a:db:92:a4:71:29:09:0d:5a:72:f1:23:6d:12:15:
de:4f:09:d3:09:98:34:2a:7d:7e:ff:c5:24:57:94:
95:45:19:87:8b:99:1a:ec:64:be:2d:8b:4f:65:48:
25:bb:fe:03:73:7c:b8:d3:1a:e4:f3:5d:6c:a1:72:
1d:1b:e9:89:ea:6f:b4:5e:0d:16:c7:93:70:a9:94:
4b:e0:9f:a3:bf:b2:ec:93:9c:ad:71:74:df:c6:a3:
85:3d:ef:35:17:a2:7f:62:a9:4d:d5:46:11:3d:e6:
32:af:8b:c7:87:72:e4:44:02:72:37:56:c9:1c:ca:
b8:6f:a0:ba:bf:92:86:12:fc:45:03:67:bb:7b:28:
c0:4f:60:ff:5f:61:39:57:0b:97:ce:67:fe:eb:82:
94:9d:bc:a2:ac:7e:7e:e0:7e:71:0b:f0:96:b6:94:
46:d9:f6:f6:9f:01:f5:65:be:60:76:7e:5e:c5:b8:
cf:fd:1d:9a:35:6c:22:23:99:dc:f3:bf:56:fd:59:
fe:1e:80:86:08:2f:13:81:96:7f:38:db:9e:d8:43:
94:8b:14:4d:d0:a0:9a:07:67:b1:07:99:44:89:03:
90:86:c3:bc:0c:35:dc:99:82:a9:ac:c2:26:42:78:
e9:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:B5:59:6D:25:63:C6:14:5D:6B:FA:81:48:79:E3:F2:4C:C8:32:05
X509v3 Authority Key Identifier:
keyid:05:34:C4:9F:CF:A8:A4:50:41:D9:5E:D4:D8:D4:FC:69:C7:27:A4:67
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/BTTEn8-opFBB2V7U2NT8accnpGc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/kbVZbSVjxhRda_qBSHnj8kzIMgU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/0ccbda-d6f1-4527-8106-cd7e06cbb531/1/BTTEn8-opFBB2V7U2NT8accnpGc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.67.244.0/22
139.28.84.0/22
Signature Algorithm: sha256WithRSAEncryption
94:26:43:33:2a:18:72:f1:9e:55:05:8c:27:ca:a1:55:3c:b1:
f4:a3:03:c5:50:d4:d8:88:6b:f9:2d:3a:e0:0b:83:0e:19:9c:
43:b7:9a:f8:ce:32:15:66:00:a1:11:9c:b9:02:d5:8d:4f:f8:
15:f9:83:4b:d6:b9:cd:7a:04:35:e6:cd:70:0d:1a:c6:2f:21:
b5:1a:c9:90:c0:43:a3:b6:1d:a9:f6:0f:ff:f5:2c:0f:2f:12:
c3:fd:c9:08:07:de:c2:e7:c5:13:77:3d:11:f8:17:8e:d2:4e:
d9:82:56:8a:a9:77:12:71:a5:24:5f:2d:75:51:d6:4b:99:f8:
85:30:23:3f:bf:f8:a4:21:a3:6b:00:e8:ba:11:81:69:19:15:
4e:e7:6e:0e:bc:97:62:90:6b:f4:77:e0:52:64:5a:1b:a6:65:
2e:79:1e:1d:fb:f9:d4:13:b0:23:46:85:2b:2f:68:74:0c:ef:
92:ed:f5:5f:0d:61:da:9d:66:c6:7b:bc:3b:5e:76:84:60:a0:
23:48:de:06:15:56:8e:bf:3e:4d:33:45:8a:00:53:e7:e9:78:
d0:25:0c:40:c8:44:71:00:a8:5d:1e:ec:f8:c5:73:b0:4f:37:
d4:9c:3e:4c:12:ec:85:b6:90:69:bb:05:39:ac:9a:00:94:6f:
c2:53:cd:19
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:52:35 2023 by rpki-client on console-ams.rpki-client.org